Description:
Some buffer overflow vulnerabilities were reported in Cyrus IMAPd. A remote authenticated user may be able to execute arbitrary code.

There are some single byte buffer overflows in the imap annotate extension functions and in the processing of cached headers. A remote authenticated user can invoke these functions to trigger the buffer overflow.

There is also a buffer overflow in the fetchnews function. A news administrator on a peer news system can trigger this buffer overflow.

Sean Larsson is credited with reporting these flaws.

Impact:
A remote authenticated user may be able to execute arbitrary code on the target system with the privileges of the imap service.

Solution:
Gentoo has released a fix and indicates that all Cyrus IMAP Server users should upgrade to the latest version: